Prior exploit count

Pendle Finance's assessment for RD-F-077 — scored green on the v1.7.0 rubric. The evidence below is the curator's reasoning for this score.

Evidence summary #

Zero Pendle-core exploits found. Hacksdatabase (84 entries) contains Penpie (#33) but not Pendle. Rekt.news leaderboard: no Pendle entry; Penpie listed at #75 under its own slug. Data cache rekt.incidents: []. The 2024-09-03 Penpie incident ($27M) is a third-party integration exploit — Penpie's reentrancy bug, not Pendle's SY/PT/YT/Market contracts. Correctly excluded from Pendle's incident count.

Sources #

URL
Halborn — Explained: The Penpie Hack (September 2024)Halborn Penpie hack analysis — root cause in Penpie staking layerretrieved 2026-04-29
URL
Rekt news — Penpie Rekt (confirms separate protocol)Penpie hack analysis confirming exploit was in Penpie's batchHarvestMarketRewards, not Pendle coreretrieved 2026-04-29
URL
Rekt.news leaderboard — no Pendle entry; Penpie at #75Rekt news leaderboard — Pendle not listedretrieved 2026-04-29
Internal
In-house hacksdatabase index — Penpie entry #33, Pendle absenthacksdatabase _index.md — 84 entries, Pendle not present; Penpie entry #33 is a distinct protocolretrieved 2026-04-29

Methodology #

Count the number of distinct incidents in the hack database affecting this protocol.

See the full factor methodology and distribution across all protocols →

rubric_version v1.7.0 protocol pendle factor RD-F-077 score green collected_at 2026-04-28 21:09:40